GHSA-r62h-v64h-w564

Опубликовано: 10 июн. 2024

Источник: github

Github: Не прошло ревью

CVSS4: 9.3

CVSS3: 9.8

Описание

Use of hard-coded password to the patients' database allows an attacker to retrieve sensitive data stored in the database. The password is the same among all Simple Care software installations.

This issue affects Estomed Sp. z o.o. Simple Care software in all versions. The software is no longer supported.

Use of hard-coded password to the patients' database allows an attacker to retrieve sensitive data stored in the database. The password is the same among all Simple Care software installations.

This issue affects Estomed Sp. z o.o. Simple Care software in all versions. The software is no longer supported.

Ссылки

EPSS

Процентиль: 30%

0.00114

Низкий

9.3 Critical

CVSS4

9.8 Critical

CVSS3

CVE ID

CVE-2024-3700

Дефекты

CWE-259

CWE-798

Связанные уязвимости

CVE-2024-3700

CVSS3: 9.8

nvd

больше 1 года назад

Use of hard-coded password to the patients' database allows an attacker to retrieve sensitive data stored in the database. The password is the same among all Simple Care software installations. This issue affects Estomed Sp. z o.o. Simple Care software in all versions. The software is no longer supported.

EPSS

Процентиль: 30%

0.00114

Низкий

9.3 Critical

CVSS4

9.8 Critical

CVSS3

CVE ID

CVE-2024-3700

Дефекты

CWE-259

CWE-798